摘要
签密可在同一逻辑步中同时完成签名和加密两项功能,其代价远小于"先签名后加密"的传统实现方式,是构造信息安全系统的有效工具。研究了IEEEP1363标准定义的椭圆曲线签名体制,指出了该体制存在的两个安全缺陷:不能为签名提供保密服务、密钥不具有前向安全性。结合椭圆曲线密钥交换协议和签密的思想,构造了一个具有前向安全性的签密方案。该方案以一般椭圆曲线密码系统为基础,可以同时实现签名、加密以及对称密钥建立等功能。该方案的密钥建立过程是前向安全的,签名是前向安全的和不可伪造的。
Signcryption is a new cryptographic primitivewhich simultaneously provides both confidentiality andauthenticity. Compared with the cases where the encryption and signature operations are simply sequentially composed, signcryption can achieve significant savings both in computational and communication overhead. The security of elliptic curve cryptography digital signature scheme described in IEEE P1363 is studied, and two security drawbacks of that scheme is pointed out: It can't protect the confidence of the signature and it can't provide forward security. In order to conquer those drawbacks, based on elliptic curve cryptography key agreement protocols and the method of signcryption, a forward-secure signcryption scheme is proposed, which can apply to a common cryptography system of ECC. Symmetrical key agreement, digital signature and encryption can be realized once the scheme is implemented. Finally, the scheme is proved has lots of secure characters, which are key agreement forward-secure, signature forward-secure and resistant to forging attack.
出处
《计算机工程与设计》
CSCD
北大核心
2008年第22期5732-5734,共3页
Computer Engineering and Design
基金
国家自然科学基金项目(60473021)
河南省自然科学基金项目(511010900)
关键词
椭圆曲线密码
前向安全
签密
密钥管理
加密
elliptic curve cryptography
forward security
signcryption
key management
encryption